Closed thlengge closed 13 years ago
olavmrk
commented
13 years ago Is there a public page that I can access to send authentication requests from those SPs? I don't need to be able to log in to the IdP, I just want to examine the authentication requests to see what is going wrong. (Feel free to send the URLs by private message if you don't want to share them publicly.)
olavmrk
commented
13 years ago Just to summarize the result of some emails:
The first SP is using IdP initiated authentication, and tracking it will require parsing of the SAML 2.0 discovery service protocol. That is something that we want to support. I have created issue #3 for it.
In the second SP we failed to parse the SAML message due to a whitespace issue. That was fixed by 304b3c4.
I first connected to Shibboleth SP1, there the AuthN Request shows up in the SAML tracer window, but it does not get recognized and decoded. After successful login on the Shibboleth IdP I see the SAML assertion and it gets properly decoded.
Thereafter I connected to Shibboleth SP2. Here the SAML2 AuthN Request does not show up at all in the SAML tracer window. The redirect to /idp/AuthnEngine is the first URL on the IdP which shows up in the list of SAML tracer. Again, the posted SAML assertion gets decoded correctly.
SAML tracer 0.1, Firefox 4.0.1, Mac OS X 10.6.7